Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Can you delete NS records with nsupdate?

1,451 views
Skip to first unread message

Lists User

unread,
Jan 22, 2002, 11:46:26 AM1/22/02
to

The subject speeks for itself.

Doesn't look possible... Not sure how the sytax would look,
so I thought I would just throw out the question.

Thanks,
-Dave

Lists User

unread,
Jan 22, 2002, 11:54:32 AM1/22/02
to

Nevermind.... figured it out thanks to another post of the site.

-Steve

Barry Margolin

unread,
Jan 22, 2002, 12:00:04 PM1/22/02
to
In article <a2k512$8...@pub3.rc.vix.com>,

Lists User <li...@mail.tiggee.com> wrote:
>Doesn't look possible... Not sure how the sytax would look,
>so I thought I would just throw out the question.

It would be just like deleting any other record type:

$ nsupdate
> update delete <name> in ns <nameserver>

--
Barry Margolin, bar...@genuity.net
Genuity, Woburn, MA
*** DON'T SEND TECHNICAL QUESTIONS DIRECTLY TO ME, post them to newsgroups.
Please DON'T copy followups to me -- I'll assume it wasn't posted to the group.

Lists User

unread,
Jan 22, 2002, 12:41:07 PM1/22/02
to

The problem I am having was that the NS record was a lame record.

In the domain tester.com. I had a ns record for sub1.
example:
update add sub1.tester.com. 10800 NS ns1.anotherdomain.com.

This added no problem.

then when I tried:
update delete sub1.tester.com. NS ns1.anotherdomain.com.
or
update delete sub1.tester.com. IN NS ns1.anotherdomain.com.


It bombed and said:

Reply from SOA query:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 33475
;; flags: qr rd ra ; QUESTION: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;sub1.tester.com. IN SOA


response to SOA query was unsuccessful

I guess this is because it was a lame nameserver correct?

Thanks for any help,
-Dave

Barry Margolin

unread,
Jan 22, 2002, 1:45:45 PM1/22/02
to
In article <a2k87j$8...@pub3.rc.vix.com>,

Lists User <li...@mail.tiggee.com> wrote:
>The problem I am having was that the NS record was a lame record.
>
>In the domain tester.com. I had a ns record for sub1.
>example:
>update add sub1.tester.com. 10800 NS ns1.anotherdomain.com.
>
>This added no problem.
>
>then when I tried:
>update delete sub1.tester.com. NS ns1.anotherdomain.com.
>or
>update delete sub1.tester.com. IN NS ns1.anotherdomain.com.
>
>
>It bombed and said:
>
>Reply from SOA query:
>;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 33475
>;; flags: qr rd ra ; QUESTION: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
>;; QUESTION SECTION:
>;sub1.tester.com. IN SOA
>
>
>response to SOA query was unsuccessful
>
>
>
>I guess this is because it was a lame nameserver correct?

I suspect a bug in nsupdate. It seems to be assuming that you're trying to
remove the NS record at the top of the sub1.tester.com domain, rather than
the delegation record in the tester.com domain. So it's doing an SOA query
for sub1.tester.com rather than tester.com.

Mark_A...@isc.org

unread,
Jan 22, 2002, 4:52:09 PM1/22/02
to

> In article <a2k87j$8...@pub3.rc.vix.com>,
> Lists User <li...@mail.tiggee.com> wrote:
> >The problem I am having was that the NS record was a lame record.
> >
> >In the domain tester.com. I had a ns record for sub1.
> >example:
> >update add sub1.tester.com. 10800 NS ns1.anotherdomain.com.
> >
> >This added no problem.
> >
> >then when I tried:
> >update delete sub1.tester.com. NS ns1.anotherdomain.com.
> >or
> >update delete sub1.tester.com. IN NS ns1.anotherdomain.com.
> >
> >
> >It bombed and said:
> >
> >Reply from SOA query:
> >;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 33475
> >;; flags: qr rd ra ; QUESTION: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
> >;; QUESTION SECTION:
> >;sub1.tester.com. IN SOA
> >
> >
> >response to SOA query was unsuccessful
> >
> >
> >
> >I guess this is because it was a lame nameserver correct?
>
> I suspect a bug in nsupdate. It seems to be assuming that you're trying to
> remove the NS record at the top of the sub1.tester.com domain, rather than
> the delegation record in the tester.com domain. So it's doing an SOA query
> for sub1.tester.com rather than tester.com.

If you want to update glue then you need to specify the zone.

zone tester.com.


update delete sub1.tester.com. IN NS ns1.anotherdomain.com.

Note the periods at the ends of the domain names.

Mark
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.A...@isc.org

Kevin Darcy

unread,
Jan 22, 2002, 5:32:07 PM1/22/02
to

Mark_A...@isc.org wrote:

To put it a slightly different way: if you want to delete NS records, you need
to decide *which* set of NS records you want to delete or delete from, i.e. from
the delegating NS records (in the parent zone, otherwise known as "glue") or
from the NS records in the zone itself. nsupdate's "default" is to delete the NS
records in the zone itself. If you want to delete delegating NS records, then
you need to tell nsupdate that by specifying "zone". The "zone" keyword is only
recognized in the BIND 9 version of nsupdate.


- Kevin


0 new messages